townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

75 Commits

Author SHA1 Message Date
wouter
50220ed991 - Can set tls authentication with forward-addr: IP#tls.auth.name 
And put the public cert bundle in tls-cert-bundle: "ca-bundle.pem".


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4631 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-19 12:10:05 +00:00
wouter
cc34c6bd06 authzone work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4380 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-19 15:11:20 +00:00
wouter
f6767b6484 - authzone work, probe timer setup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4378 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-19 09:03:36 +00:00
wouter
6c6d33763d - use a cachedb answer even if it's "expired" when serve-expired is yes 
(patch from Jinmei Tatuya).
- trigger refetching of the answer in that case (this will bypass
  cachedb lookup)
- allow storing a 0-TTL answer from cachedb in the in-memory message
  cache when serve-expired is yes


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4353 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-19 09:08:29 +00:00
wouter
39ba948040 - Spelling fixes, from Phil Porada. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4344 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-15 14:29:28 +00:00
ralph
865b0eb154 - Added mesh_add_sub to add detached mesh entries. 
- Use mesh_add_sub for key tag signaling queries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4144 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-02 13:17:56 +00:00
ralph
9b5ca3ffd8 - Remove ECS option after REFUSED answer 
- Fix small memory leak in edns_opt_copy_alloc



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4100 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-10 09:12:04 +00:00
ralph
9d03b5781d - remove malloc from inplace_cb_register 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4095 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-06 13:41:49 +00:00
ralph
4113eb0a41 - Generalise inplace callback (de)registration 
- (de)register inplace callbacks for module id
- No unbound-control set_option for ECS options
- Deprecated client-subnet-opcode config option
- Introduced client-subnet-always-forward config option
- Changed max-client-subnet-ipv6 default to 56 (as in RFC)
- Removed extern ECS config options
- module_restart_next now calls clear on all following modules
- Also create ECS module qstate on module_event_pass event


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4092 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-06 13:13:06 +00:00
ralph
12728301d7 - Merge EDNS Client subnet implementation from feature branch into main branch, 
using new EDNS processing framework.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4074 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-21 12:08:17 +00:00
wouter
099cd16231 - Response actions based on IP address from Jinmei Tatuya (Infoblox). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4035 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-07 14:58:51 +00:00
wouter
2661aa45f1 - Increase MAX_MODULE to 16. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3993 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-20 07:33:54 +00:00
wouter
60a7029fcd - Fix to rename internally used types from _t to _type, because _t 
type names are reserved by POSIX.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-19 10:25:41 +00:00
george
4812f02dd0 - Added generic EDNS code for registering known EDNS option codes, 
bypassing the cache response stage and uniquifying mesh states. Four EDNS
  option lists were added to module_qstate (module_qstate.edns_opts_*) to
  store EDNS options from/to front/back side.
- Added two flags to module_qstate (no_cache_lookup, no_cache_store) that
  control the modules' cache interactions.
- Added code for registering inplace callback functions. The registered
  functions can be called just before replying with local data or Chaos,
  replying from cache, replying with SERVFAIL, replying with a resolved
  query, sending a query to a nameserver. The functions can inspect the
  available data and maybe change response/query related data (i.e. append
  EDNS options).
- Updated Python module for the above.
- Updated Python documentation.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3947 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-06 13:42:51 +00:00
ralph
4097f78b84 pass ssl_upstream as int to (lib)worker_send_query 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3924 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-04 14:02:22 +00:00
ralph
3fb4900c0e - Added stub-ssl-upstream and forward-ssl-upstream options. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3923 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-04 12:07:52 +00:00
wouter
9504853b86 - and also generic edns options for upstream messages (and replies). 
after parse use edns_opt_find(edns.opt_list, LDNS_EDNS_NSID),
  to insert use edns_opt_append(edns, region, code, len, bindata) on
  the opt_list passed to send_query, or in edns_opt_inplace_reply.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3742 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-31 16:55:22 +00:00
wouter
0778829809 - Fix that CD flag disables DNS64 processing, returning the DNSSEC 
signed AAAA denial.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3273 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-11-18 15:15:57 +00:00
wouter
c9c7f29161 - Fix caps-for-id fallback, and added fallback attempt when servers 
drop 0x20 perturbed queries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3146 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-06-24 08:24:28 +00:00
wouter
68b138cbd3 And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-07 13:28:39 +00:00
wouter
fd6807c38f - code documentation on the module interface. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3074 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-06 13:18:32 +00:00
wouter
db8f72c4f7 - Fix sldns to use sldns_ prefix for all ldns_ variables. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3022 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-12-03 09:11:16 +00:00
wouter
8e6ee27eda - separate ldns into core ldns inside ldns/ subdirectory. No more 
--with-ldns is needed and unbound does not rely on libldns.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-10-31 15:09:26 +00:00
wouter
b4a007738c - Fix for 2038, with time_t instead of uint32_t. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2939 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-20 12:23:42 +00:00
wouter
6ffbc94b48 - iter_hints is now thread-owned in module env, and thus threadsafe. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2629 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-16 09:55:50 +00:00
wouter
8762da8720 infra cache consolidated and stores per zone, IP. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2525 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-26 15:46:23 +00:00
wouter
5e9f5cad61 - better documentation for inform_super (Thanks Yang Zhe). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2512 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-17 13:11:58 +00:00
wouter
911eba0f73 - openbsd-lint fixes: acl_list_get_mem used if debug-alloc enabled. 
iterator get_mem includes priv_get_mem.  delegpt nodup removed.
  listen_pushback, query_info_allocqname, write_socket, send_packet,
  comm_point_set_cb_arg and listen_resume removed.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2222 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-08-20 13:30:41 +00:00
wouter
963cb57146 - Fix EDNS probe for .de DNSSEC testbed failure, where the infra 
cache timeout coincided with a server update, the current EDNS 
  backoff is less sensitive, and does not cache the backoff unless 
  the backoff actually works and the domain is not expecting DNSSEC.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2063 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-06 08:35:37 +00:00
wouter
1a36f962b7 different structure alignment. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1959 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-18 11:24:28 +00:00
wouter
988cdf0808 work on prefetch: store the updated results in the cache. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1954 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-08 15:59:36 +00:00
wouter
7acf38ac32 - Made new validator error string available from libunbound for 
applications.  It is in result->why_bogus, a zero-terminated string.
	  unbound-host prints it by default if a result is bogus.
	  Also the errinf is public in module_qstate (for other modules).
	Binary API different. bumped library ABI version.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1874 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-10-08 17:05:53 +00:00
wouter
404b2e7a85 Retry mode, DS and prime. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1860 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-10-07 07:52:02 +00:00
wouter
4ba1003f2c Data retry on validation failure. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1859 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-10-06 08:31:47 +00:00
wouter
971004b350 Fix autotrust-5011 file used from libunbound (no probing by itself because 
it may not have the processor whenever it likes).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1857 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-10-02 08:08:44 +00:00
wouter
7bc0cca2bf active probe 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1802 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-09-01 14:47:57 +00:00
wouter
827f9bfef1 forward command for unbound-control. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1482 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-02-13 15:26:37 +00:00
wouter
d0b7ea1e50 write-strings warnings fixed. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1330 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-11-04 14:53:50 +00:00
wouter
05dcda36e2 working on negative DS 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1288 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-10-07 15:22:32 +00:00
wouter
a2c3b61c68 0x20 fallback code. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1285 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-10-06 14:46:22 +00:00
wouter
cf50a0bcb7 Faster due to time-sharing. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@966 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-02-19 13:12:23 +00:00
wouter
67d2bad8e0 dnssec lame detection. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@714 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-22 15:25:37 +00:00
wouter
4bcd6aac94 regional nicer, remove region-allocator. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@697 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-18 20:31:43 +00:00
wouter
e97cae4641 Memory cleanup. 
- caught bad free of un-alloced data in worker_send error case.
       - memory accounting for key cache (trust anchors and temporary cache).
       - memory accounting fixup for outside network tcp pending waits.
       - memory accounting fixup for outside network tcp callbacks.
       - memory accounting for iterator fixed storage.
       - key cache size and slabs config options.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@566 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-30 12:45:19 +00:00
wouter
4ee83871c3 Returns and caches validated replies. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@536 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-21 13:12:10 +00:00
wouter
801bfa406b sigcrypt. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@498 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-07 15:18:25 +00:00
wouter
b3cbef4dfc passing of control between modules. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@479 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-02 12:13:08 +00:00
wouter
80ffffebd1 remove done and supers module interface calls. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@474 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-02 08:07:50 +00:00
wouter
b6f4010edf callbacks via module specific function for walk_supers. 
part of a move towards multiple modules for meshes.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@471 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-01 14:01:34 +00:00
wouter
f5c4688976 prime flag moved. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@470 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-01 12:59:37 +00:00